BEST AVAILABLE COPY 



Signature and Timestamp in Electronic Document 

Kazuya Miyazaki 

Summary 

In recent years business conputerization and electronic commerce over the Intemet 
has become popular, and according to this trend, there has been abrupt increase in 
electronic documents. Since it is quite easy to copy or process electronic documents 
compared to paper-based documents, it is difficult to guarantee authenticity of the 
electric documents: when, by whom and what is drafted. Thanks to development of 
PKI (Public Key Infrastructure) and constitution of Electronic Signature Law, the 
framework to guarantee the authenticity of electronic documents is being established in 
both of technical and legislative aspects. However, a digital signature at the center of 
the framework is of a problem in that not only it does not have a method, to guarantee 
"when", but also it becomes unable to guarantee "by whom" and "what" as time 
advances. 

One of the methods to solve this problem is Timestan^. 

Timestan^ is a scheme to guarantee existence of an electronic document at a 
particular point in time, and that the electronic document is not altered^after the point in 
time. A timestamp is issued by a reliable third party called TimeStan^ing Authority. 
By using an accurate time as much as possible for the timestan^, or by disclosing hash 
values to the public media, such as journals or newspapers, it is possible to improve the 
reliability of the timestamp itself. 

Timestamp is now drawing increasing attention, in such that? it is adopted as a 
standard extended specification for the digital signature and a standard signature format 
for medical image information, and is expected to be used in a broad range of areas in 
the future. 

Brief descr^tion of Timestan^ (Description below the figure on the first page) 
TimeStanq^ing Authority, when transmitted hash values of the electronic document to 
which issuance of timestamps is desired, combines hash values and time information, 
and returns the data whereto signature by the TimeStamping Authority is attached as 
timestanps, and returns the timestarrps. The accurate time information is obtained 
from GPS (Global Positioning System) satellites or the like. TimeStamping Authority 
periodically discloses the hash values to the public media, such as journals and 
newspapers to improve the reliability of the service. 

1. Preface 

In recent years business computerization and electronic commerce over the Intemet 
has become popular, and according to this trend, there has been abrupt increase in 
electronic documents. Since it is quite easy to copy or process electronic documents 
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compared to paper-based documents, it is difficult to guarantee "when", "by whom" and 
"what" (documents with what kind of contents) is drafted (that is, guarantee for the 
authenticity of electric documents). Therefore, conventionally, there has been a need 
to exchange or preserve important documents in need of a legal proof in paper or 
microfiches, not in electronic documents. 

Development of information security technology, especially, emergence of PKI, and 
constitution of Electronic Signature Law are changing such a situation. The digital 
signature in PKI is a technique that guarantees the creator or the sender (by whom) of 
the electronic documents, and that the contents of the electronic documents (what) are 
not altered. Electronic Signature Law is the law that provides legal grounds for the 
digital signature. Both PKI and Electronic Signature Law make it possible to secure 
the authenticity of electronic documents, and introduce the possibility to exchange or 
preserve important documents, such as administrative documents, medical records 
(medical chart), contracts, billing information, technical writing, and customer 
information, or the like. 

However, the digital signature has temporal restriction as described below, therefore, 
the digital signature has a problem in that it is incapable of guaranteeing not only 
"when", but also "by whom" and "what" as time advances. 

Timestamp is a way to solve this problem. 

This document introduces a scheme of the digital signature, which is one of the 
representative methods of realizing electronic signature, problems of the digital 
signature, necessity and a scheme of Timestan^), and a prospect in the future. 

2. PKI and The digital signature 

It is decided that "Law Concerning Electronic Signatures and Certification Services", 
so-called "Electronic Signature Law" will be enforced fi-om this coming April 1, 2001. 
Electronic Signature Law sets the regulations that information recorded in 
electromagnetic records shall be assumed to be authentic provided that a specific 
electronic signature is appended to the information by the principal, which provides 
electronic documents with legal grounds for achieving validity equivalent to 
paper-based documents by an electronic signature. 

The electronic signature is defined as a measure taken with information recorded in 
electro-magnetic records in the aim of indicating a creator thereof, such as encryption, 
and a measure taken in a verifiable manner if alteration of the information has been 
performed. An electronic signature based on a public key is called the digital signature. 
Here, it is described a scheme of the digital signature according to PKI and how the 
digital signature guarantees authenticity. 

PKI realizes the digital signature by using the public key cryptosystem. The public 
key cryptosystem is a system using a pair of two different keys (a public key and a 
secret key), where data encrypted by a public key can be only decrypted by using the 
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one and only secret key corresponding to the public key, and vice versa (encrypt with a 
secret key and decrypt with a public key). The secret key is privately stored in a 
rigorous manner, and the public key is disclosed to others. Certification Authority 
issues a certification (a public-key certification) to certify that the pubhc key is 
correspondent to the secret key possessed by the principal, guarantees the relation. 
Fig. 1 shows a scheme of the digital signature. 

Next is described a procedure to generates and verifies the digital signature. 

2. 1 Generation Procedure of The digital signature 

(1) A hash function is applied to an electronic document as an original text to 
generate a message digest. Here, the hash function is a function to convert 
a long- length original text into short-constant-length data (referred to as a 
message digest (MD) or a hash value, as well) and has a attribution to alter 
MD significantly even if the original text is altered only slightly. 

(2) Generates a signature by encrypting MD with a secret key. 

2.2 Validation Procedure of the Digital Signature 

(1) Apply a hash value to the received original text to yield MD. 

(2) Decrypt the received digital signature with a public key and yield MD. 

(3) Determine if both the MDs agree. 

Since the holder of the secret key is guaranteed and MD is altered in a case the original 
text is altered, therefore, if the both MDs agree, the following two facts are confirmed: 

• Who generates the signature (the generator of the signature) 

• For what the signature is signed (tenqjer-proof function of the original text) 

3. Problems in the Digital Signature 

As described in the preceding section, the digital signature guarantees by whom and 
for what contents the signature has been appended. Here, what connects the signature 
and the signer is the certification. The certification has in fact a validity period and is 
subject to a "revocation" when the certification loses its validity before expiry of the 
validity period. When the certification revokes, the grounds for guaranteeing link 
among the secret key, the public key and a person as basis of the digital signature are 
lost. Additionally, the digital signature does not have a means to guarantee an accurate 
generated time (it is easy to embed a false time by manipulating a system clock in a 
personal computer whereon generating software runs), therefore, it is impossible to 
guarantee "when", and to confirm whether or not the digital signature is generated 
within the validity period or before the revocation, as well. 

Thus, the digital signature is deemed to be valid only in the term within the validity 
period of the certification and before the revocation, and in consideration of the validity 
period normal certification being about a couple of years, the digital signature is quite 
transient. Then, if we try to store electronically the documents required to be saved 



3 



legally for a long term (for instance, five years for medical records, ten years for 
account books, 1 to 30 years for administrative documents), it is impossible to guarantee 
whether the documents are authentic or altered with the digital signature. 

The problems are pointed out in Europe, as well, by EESSI (European Electronic 
Signature Standardization Initiative), and extended specifications of the digital signature 
using timestanps are proposed in the standardization activities by ETSI (European 
Telecommunications Standards Institute) and IETF (Internet Engineering Task Force) to 
solve these problems. 

4. Timestamp 

Timestamps are like stamps on mails, which guarantee the following two facts for 
the electronic documents: 

• The electronic documents existed at a particular point in time 

• The electronic documents are not altered after the point in time 
However accurate a time is labeled, the label indicated by mere electronic data can 

be easily altered. The timestamps need some schemes to prevent such alteration, and 
some schemes are proposed. Here, it is explained a scheme whose standardization is 
imderway in IETF. 

The procedure in the scheme is as follows: 

(1) A requesting party who requests issuance of the timestamps transmits hash values of 
electronic data to be appended to the timestan^s to TimeStan^ing Authority. 

(2) TimeStamping Authority binds time information (a GPS time signal is used usually 
to obtain an accurate time) to the received hash values, generates the digital 
signatures, and transmits the generated digital signatures together with the hash 
values and the time information as the timestamps to the requesting party. 
TimeStamping Authority may periodically disclose the hash values to enhance the 
reliability of the timestaiqps. Here, some of the hash values obtained from the 
requesting party are concatenated, and the hash values obtained from the 
concatenated data are placed in journals and newspapers. As described in the 
section 2, the hash values are data alternating the original text, and by releasing the 
hash values, it is made possible to guarantee the existence of the original texts, 
which are the source of the hash values. The relation between the released time 
and the time indicated by the timestamps is verifiable, and by operating in a manner 
so that inconsistency does not occur between the times, the reliability of the 
timestamps is enhanced. 

5. Conclusion 

Since Timestamp resolves the problems in the digital signature and guarantees the 
validity of the digital signature, there has been a consideration of extended 
specifications of the digital signature using the timestamps, as well as an attempt to 
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define the digital signature format using Timestamp as extended specifications of the 
format of "Digital Imaging and Communication in Medicine" by DICOM (Digital 
Imaging and Communications in Medicine), which examines the formats concerning 
medical imaging. Additionally, since Timestamp can guarantee the existence of 
electronic documents and data at a particular point in time by itself, it is possible, for 
example, to claim a priority of an intellectual property when a timestamp has been 
obtained for technical information. Services having such a point have been already 
developed in U. S. 

As stated above, Timestamp is now drawing increasing attention, and is expected to 
be used in a broad range of areas in the future. 
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